bench-forgejo/modules/password/pwn.go

// Copyright 2020 The Gitea Authors. All rights reserved.
// SPDX-License-Identifier: MIT

package password

import (
	"context"

	"code.gitea.io/gitea/modules/setting"

	"go.jolheiser.com/pwn"
)

// IsPwned checks whether a password has been pwned
// NOTE: This func returns true if it encounters an error under the assumption that you ALWAYS want to check against
// HIBP, so not getting a response should block a password until it can be verified.
func IsPwned(ctx context.Context, password string) (bool, error) {
	if !setting.PasswordCheckPwn {
		return false, nil
	}

	client := pwn.New(pwn.WithContext(ctx))
	count, err := client.CheckPassword(password, true)
	if err != nil {
		return true, err
	}

	return count > 0, nil
}
Check passwords against HaveIBeenPwned (#12716) * Implement pwn Signed-off-by: jolheiser <john.olheiser@gmail.com> * Update module Signed-off-by: jolheiser <john.olheiser@gmail.com> * Apply suggestions mrsdizzie Co-authored-by: mrsdizzie <info@mrsdizzie.com> * Add link to HIBP Signed-off-by: jolheiser <john.olheiser@gmail.com> * Add more details to admin command Signed-off-by: jolheiser <john.olheiser@gmail.com> * Add context to pwn Signed-off-by: jolheiser <john.olheiser@gmail.com> * Consistency and making some noise ;) Signed-off-by: jolheiser <john.olheiser@gmail.com> Co-authored-by: mrsdizzie <info@mrsdizzie.com> Co-authored-by: zeripath <art27@cantab.net> 2020-09-09 03:36:39 +05:30			`// Copyright 2020 The Gitea Authors. All rights reserved.`
Implement FSFE REUSE for golang files (#21840) Change all license headers to comply with REUSE specification. Fix #16132 Co-authored-by: flynnnnnnnnnn <flynnnnnnnnnn@github> Co-authored-by: John Olheiser <john.olheiser@gmail.com> 2022-11-27 23:50:29 +05:30			`// SPDX-License-Identifier: MIT`
Check passwords against HaveIBeenPwned (#12716) * Implement pwn Signed-off-by: jolheiser <john.olheiser@gmail.com> * Update module Signed-off-by: jolheiser <john.olheiser@gmail.com> * Apply suggestions mrsdizzie Co-authored-by: mrsdizzie <info@mrsdizzie.com> * Add link to HIBP Signed-off-by: jolheiser <john.olheiser@gmail.com> * Add more details to admin command Signed-off-by: jolheiser <john.olheiser@gmail.com> * Add context to pwn Signed-off-by: jolheiser <john.olheiser@gmail.com> * Consistency and making some noise ;) Signed-off-by: jolheiser <john.olheiser@gmail.com> Co-authored-by: mrsdizzie <info@mrsdizzie.com> Co-authored-by: zeripath <art27@cantab.net> 2020-09-09 03:36:39 +05:30
			`package password`

			`import (`
			`"context"`

			`"code.gitea.io/gitea/modules/setting"`

			`"go.jolheiser.com/pwn"`
			`)`

			`// IsPwned checks whether a password has been pwned`
			`// NOTE: This func returns true if it encounters an error under the assumption that you ALWAYS want to check against`
			`// HIBP, so not getting a response should block a password until it can be verified.`
			`func IsPwned(ctx context.Context, password string) (bool, error) {`
			`if !setting.PasswordCheckPwn {`
			`return false, nil`
			`}`

			`client := pwn.New(pwn.WithContext(ctx))`
			`count, err := client.CheckPassword(password, true)`
			`if err != nil {`
			`return true, err`
			`}`

			`return count > 0, nil`
			`}`